Release Notes: Stack-allocated buffers have been changed to
heap-allocated buffers to avoid stack corruption
security problems. A security advisory for this
issue is forthcoming from iDefense [IDEF2125].

Release Notes: This release bugs that were preventing a few files from being readable. Security updates were made to the "extract_chmLib" example program. automake is now used. Miscellaneous other patches were incorporated.

Release Notes: Another stack overflow that was trivially exploitable to run arbitrary code was fixed. The Makefile.in was fixed so that "make install" does the right thing. Previously, it was not working properly and the examples would subsequently fail to build.

Release Notes: A couple of serious security issues have been reported recently which
allowed a carefully-crafted chm file to result in a buffer overflow.
This release fixes these problems. Anyone using an earlier release and
reading chm files from untrusted sources should upgrade to 0.36.

Release Notes: This version features fixes to enable chmlib to deal with
several sorts of files which it would previously either fail to
open, or which it would open, but then would fail to read
some of the files in the archive. In particular, support has
been slightly improved for UTF-8 filenames. Files with no
compressed section, such as CHW files can be read. Files
with unusual compression parameters can be read now as
well.

Release Notes: Build process warts have been fixed. Directories should now be properly detected as distinct from empty files. chm_http now allows specification of the IP and port. Fixes have been incorporated to allow compilation on Windows CE.